Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco web security appliance vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2021-34748
A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote malicious user to perform a command injection attack on an affected device. This vulnerability is due to insufficient input validation. An attacker cou...
Cisco Intersight Virtual Appliance
9
CVSSv2
CVE-2021-1618
Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote malicious user to conduct a path traversal or command injection attack on an affected system. These vulnerabilities are due to insufficient in...
Cisco Intersight Virtual Appliance
9
CVSSv2
CVE-2021-1359
A vulnerability in the configuration management of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. This vulnerability is due to insufficient validation of user-su...
Cisco Web Security Appliance 11.8.0-429
Cisco Web Security Appliance 11.8.0-453
Cisco Asyncos
9
CVSSv2
CVE-2018-0300
A vulnerability in the process of uploading new application images to Cisco FXOS on the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Firepower 9300 Security Appliance could allow an authenticated, remote attacker using path traversal techniques to create or ove...
Cisco Fxos 2.0\\(1.68\\)
9
CVSSv2
CVE-2017-6746
A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. Affected Products: ...
Cisco Web Security Appliance 11.0.0
Cisco Web Security Appliance 10.5.0-358
Cisco Web Security Appliance 10.1.0-204
Cisco Web Security Appliance 10.1.1-234
Cisco Web Security Appliance 10.0 Base
Cisco Web Security Appliance 10.1.0
Cisco Web Security Appliance 11.0.0-641
Cisco Web Security Appliance 10.5.0
Cisco Web Security Appliance 10.0.0-233
Cisco Web Security Appliance 11.0.0-613
Cisco Web Security Appliance 10.1.1-230
9
CVSSv2
CVE-2016-1458
The web-based GUI in Cisco Firepower Management Center 4.x and 5.x prior to 5.3.0.3, 5.3.1.x prior to 5.3.1.2, and 5.4.x prior to 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devices with FirePOWER Services 4.x and 5.x prior to 5.3.0.3, 5.3.1.x prior to ...
Cisco Firepower Management Center 5.3.0
Cisco Firepower Management Center 4.10.3
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.3.1
9
CVSSv2
CVE-2016-1457
The web-based GUI in Cisco Firepower Management Center 4.x and 5.x prior to 5.3.1.2 and 5.4.x prior to 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devices with FirePOWER Services 4.x and 5.x prior to 5.3.1.2 and 5.4.x prior to 5.4.0.1 allows remote auth...
Cisco Firepower Management Center 5.3.0.4
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.3.1
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 4.10.3.9
9
CVSSv2
CVE-2015-6298
The admin web interface in Cisco AsyncOS 8.x prior to 8.0.8-113, 8.1.x and 8.5.x prior to 8.5.3-051, 8.6.x and 8.7.x prior to 8.7.0-171-LD, and 8.8.x prior to 8.8.0-085 on Web Security Appliance (WSA) devices allows remote authenticated users to obtain root privileges via crafted...
Cisco Web Security Appliance 8.5.0-497
9
CVSSv2
CVE-2013-3383
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-550 allows remote authenticated users to execute arbitrary commands via crafted command-line input in a URL sent over IPv4, aka Bug ID ...
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos
9
CVSSv2
CVE-2013-3384
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-550; Email Security Appliance devices prior to 7.1.5-104, 7.3 prior to 7.3.2-026, 7.5 prior to 7.5.2-203, and 7.6 prior to 7.6.3-019; a...
Cisco Ironport Asyncos
Cisco Ironport Asyncos 7.2
Cisco Ironport Asyncos 7.8
Cisco Ironport Asyncos 7.9
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »